CVE-2025-67601

HIGH SEVERITY

CVSS Score & Metrics

Base Score

8.4 / 10

Vector String

                                        CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H                                    

Vulnerability Description

A vulnerability has been identified within Rancher Manager, where using self-signed CA certificates and passing the -skip-verify flag to the Rancher CLI login command without also passing the –cacert flag results in the CLI attempting to fetch CA certificates stored in Rancher’s setting cacerts.

Vulnerability Details

Published Date

February 01, 2026

Last Modified

March 03, 2026

CWE ID

CWE-295

Source

GitHub

Vendor

Product

github.com/rancher/rancher

External References

https://github.com/rancher/rancher/security/advisories/GHSA-mc24-7m59-4q5p
https://attack.mitre.org/techniques/T1557
https://github.com/rancher/rancher/releases/tag/v2.13.2
https://github.com/advisories/GHSA-mc24-7m59-4q5p

CVE-2025-67601

CVSS Score & Metrics

Vulnerability Description

Vulnerability Details

External References

Discussion (0)

Add Comment